Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/feaa1b-b7c1-4b48-9594-baf24dd5839f/1/DjdJs4VgBIvm1fAWGPw97gyzUBk.roa
File: DjdJs4VgBIvm1fAWGPw97gyzUBk.roa (raw, json)
Hash identifier: nYeXkaX8SYwLL80ZBiYTR+VmVMptIcXTM6cPFzxpUvM=
Subject key identifier: 0E:37:49:B3:85:60:04:8B:E6:D5:F0:16:18:FC:3D:EE:0C:B3:50:19
Certificate issuer: /CN=331ed3d7ba511ca6002d845b3c0aa8111a3559cf
Certificate serial: 03E5B322
Authority key identifier: 33:1E:D3:D7:BA:51:1C:A6:00:2D:84:5B:3C:0A:A8:11:1A:35:59:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Mx7T17pRHKYALYRbPAqoERo1Wc8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/feaa1b-b7c1-4b48-9594-baf24dd5839f/1/DjdJs4VgBIvm1fAWGPw97gyzUBk.roa
Signing time: Sat 25 Jun 2022 16:45:54 +0000
ROA not before: Sat 25 Jun 2022 16:45:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209242
IP address blocks: 91.195.110.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65385250 (0x3e5b322)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=331ed3d7ba511ca6002d845b3c0aa8111a3559cf
Validity
Not Before: Jun 25 16:45:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0e3749b38560048be6d5f01618fc3dee0cb35019
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:c9:bb:26:97:16:5b:66:d4:bb:a7:e3:dd:6c:
d6:11:af:f2:8b:c2:10:8d:f3:0c:13:40:70:e5:59:
dc:9f:85:e8:60:0a:f7:b9:99:f1:48:bf:ac:19:4b:
1e:c0:77:e7:d4:ac:95:f5:0d:2b:4b:0b:95:3e:3c:
df:e5:43:3b:03:b8:aa:db:36:8c:42:e6:17:ad:2b:
e4:db:fe:af:25:71:0d:2f:c7:7b:99:89:33:22:c5:
f5:23:74:dd:70:0f:fa:0e:40:74:5f:78:b4:54:fc:
f4:a8:b9:8d:e9:e2:7e:36:d9:a3:16:19:00:4f:ea:
39:de:d5:96:d6:96:c9:ad:12:da:7b:a4:7a:2b:6c:
06:9d:ad:2f:02:bf:7c:96:07:5e:73:d1:47:9f:79:
48:4a:65:50:f1:cd:3b:2d:d9:dc:44:a4:3a:a9:b0:
b9:32:8d:66:77:69:dd:83:59:24:60:e1:13:27:b7:
62:ed:5e:68:45:6a:df:78:ef:4d:86:df:fc:a2:7d:
19:c5:73:f4:5e:b5:1d:4d:86:75:b5:b6:4a:3e:66:
bc:57:a7:b2:33:2a:38:0a:40:e6:fd:fb:40:d5:98:
3f:fc:b8:b1:43:de:3d:0a:30:83:b5:d6:74:87:73:
4c:a0:8a:44:3d:a9:2d:d7:06:e2:2e:9d:d9:80:7a:
84:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:37:49:B3:85:60:04:8B:E6:D5:F0:16:18:FC:3D:EE:0C:B3:50:19
X509v3 Authority Key Identifier:
keyid:33:1E:D3:D7:BA:51:1C:A6:00:2D:84:5B:3C:0A:A8:11:1A:35:59:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Mx7T17pRHKYALYRbPAqoERo1Wc8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/feaa1b-b7c1-4b48-9594-baf24dd5839f/1/DjdJs4VgBIvm1fAWGPw97gyzUBk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/feaa1b-b7c1-4b48-9594-baf24dd5839f/1/Mx7T17pRHKYALYRbPAqoERo1Wc8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.195.110.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:62:19:97:9e:fe:b8:58:ca:9e:e8:84:ff:5f:98:c2:85:cf:
8c:10:0a:77:bb:fa:ae:53:95:af:63:30:13:26:c0:71:69:bd:
76:ec:40:cd:8a:08:d7:b4:b4:bd:f3:d3:9c:a2:57:42:07:f3:
f6:88:6e:29:8a:e9:db:dd:8d:09:24:1f:1d:24:81:ce:5a:e3:
d0:7a:9e:cd:c4:41:3a:41:26:a6:15:7b:5d:5f:36:d4:39:32:
b5:02:f1:fd:75:27:27:0a:81:9e:d8:22:86:0d:8f:26:d3:cf:
44:9b:8f:7f:04:bd:0f:00:b8:d0:e1:38:fc:92:90:a5:be:1c:
52:3e:ea:7e:27:b9:32:bb:fb:99:c8:38:50:ad:47:dd:5c:89:
8f:d7:c1:5f:d5:9b:7b:69:b7:a5:ba:af:9f:63:77:65:48:10:
38:70:45:46:fb:db:e1:3f:af:dd:28:29:a5:2c:38:f7:78:d6:
fa:5c:7c:4c:dc:66:d3:8d:95:05:21:e3:71:7a:d1:61:76:21:
c2:85:42:de:0f:3e:6e:2d:d2:eb:1b:84:40:6d:b9:c5:8a:84:
1e:4f:9f:b9:96:ad:56:c9:8a:75:3e:56:eb:92:f9:58:9f:a8:
e0:4e:f6:1c:90:fb:1b:23:9d:a6:33:aa:ce:fe:cd:db:da:d5:
fb:68:99:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:19 2024 by rpki-client on console-fra.rpki-client.org